virus logo FortiClient Vulnerability

Mozilla Firefox CVE-2014-1515 Information Disclosure Vulnerability

description-logoDescription

Security researcher Roee Hay reported that a hyperlink using the file: protocol on Firefox for Android could link to a local file in the Firefox profile directory. If a user selected this link on their device, the linked file would be copied to the SD card without prompting. This SD card location is world readable leading to a potential information disclosure of files in the Firefox profile through a malicious application.

affected-products-logoAffected Applications

Firefox

CVE References

CVE-2014-1515

Other References

https://www.mozilla.org/en-US/security/advisories/mfsa2014-33
ID 48802
Created Aug 12, 2018
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS MacOS
Vendor Mozilla
Patch auto
Application Firefox